摘要
网络行为分析是网络安全领域的研究热点。论文以用户使用网络资源产生的流量为依据,对用户的网络行为进行了分类,然后基于正在标准化中与设备不相关的IP数据流信息输出(IPFIX)协议,提出了一种用户网络行为分析系统模型,研究了模型中采集点、收集器、分析器的关键技术,并对模型的性能进行了分析。该系统模型具有良好的灵活性和扩展性,并且易于实现,对于网络检测、异常行为发现,以及网络整体规划、网络资源利用等方面都有着重要的意义。
Network behaviors analysis is the hot spots of network security.It presents a taxonomy of users' network behaviors that is based on the traffic which is generated by users using network resources.Then based on IPFIX protocol,a system model of users' network behaviors analysis is proposed,the key technologies in this model are studied,and the model's performance is analyzed.The proposed model has good flexibility and scalability,also easy to implement.It is significant to the aspects of network measuring,abnormal behaviors discovering,network planning and network resource utilization.
出处
《计算机技术与发展》
2011年第9期233-236,241,共5页
Computer Technology and Development
基金
国家自然科学基金(60833002)
中央高校基本科研业务费专项资金(2011JBM016)